bianbu-repo-mirror/bianbu-linux-6.6
1
0
Fork 0
mirror of https://gitee.com/bianbu-linux/linux-6.6 synced 2025-04-24 14:07:52 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

mm/sl[au]b: check if large object is valid in __ksize()

Browse source 
If address of large object is not beginning of folio or size of the
folio is too small, it must be invalid. WARN() and return 0 in such
cases.

Cc: Marco Elver <elver@google.com>
Suggested-by: Vlastimil Babka <vbabka@suse.cz>
Signed-off-by: Hyeonggon Yoo <42.hyeyoo@gmail.com>
Reviewed-by: Vlastimil Babka <vbabka@suse.cz>
Signed-off-by: Vlastimil Babka <vbabka@suse.cz>
This commit is contained in:
Hyeonggon Yoo 2022-08-17 19:18:26 +09:00 committed by Vlastimil Babka
parent 8dfa9d5540
commit d5eff73690
1 changed files with 6 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

7
mm/slab_common.c
View file

@ -984,8 +984,13 @@ size_t __ksize(const void *object)
folio = virt_to_folio(object); folio = virt_to_folio(object);
if (unlikely(!folio_test_slab(folio))) if (unlikely(!folio_test_slab(folio))) {
if (WARN_ON(folio_size(folio) <= KMALLOC_MAX_CACHE_SIZE))
return 0;
if (WARN_ON(object != folio_address(folio)))
return 0;
return folio_size(folio); return folio_size(folio);
}
return slab_ksize(folio_slab(folio)->slab_cache); return slab_ksize(folio_slab(folio)->slab_cache);
} }